Kpmg Business Continuity Planning An experience based approach Tamás Gaidosch Director, Information Risk Management KPMG Central and Eastern Europe +36.

Slides:



Advertisements
Similar presentations
Creating a Data Disaster Recovery Plan. What is a DR Plan? Is your best solution to: Continuous business services Prompt and smooth recovery Prepare for.
Advertisements

Business Continuity Planning DavisLogicDavisLogic & All Hands ConsultingAll Hands Consulting.
Global Congress Global Leadership Vision for Project Management.
Business Continuity Training & Awareness by Sulia Toutai (ANZ)
Institutional Insurance: Creating a Comprehensive Campus-wide IT Security Risk Management Program Brian Davis IT Security & Policy Office of Information.
Reliability of the electrical service Business Continuity Management Business Impact Analysis (BIA) Critical ITC Services Minimum Business Continuity Objective.
Business Continuity and Disaster Recovery Planning.
Managed Funds Association’s Sound Practices for Hedge Fund Managers 2009 Edition.
Introduction to Business Continuity Planning An Introduction to the Business Continuity Planning Process Including Developing your Process and the Plans.
Daylight Savings Time Transition Planning. The Daylight Savings Operational Risks Affect on transaction cash flow? Affect on service delivery? Affect.
© 2009 EMC Corporation. All rights reserved. Introduction to Business Continuity Module 3.1.
Business Continuity Planning (BCP) & Disaster Recovery Planning (DRP)
1 Business Continuity: The sixth international payment system conference MNB, Budapest 14 November, 2007.
Page 1 Business Architecture – From Business Strategy to the Alignment of IT Rich Waller An Insurance Industry Case Study April 15, 2009.
Our Technology Comes with People Disaster Recovery Planning Glenn Lytle, Vice President Sales, Lumos Networks July 28,
TEL382 Greene Chapter /27/09 2 Outline What is a Disaster? Disaster Strikes Without Warning Understanding Roles and Responsibilities Preparing For.
Implementing and Auditing Ethics Programs
Measuring the effectiveness of government IT systems Current ANAO initiatives to enhance IT Audit integration and support in delivering Audit outcomes.
PETER SCOTT CONSULTING Business Management Systemize your compliance with Rule 5 Peter Scott Peter Scott Consulting
Systemise your compliance management Peter Scott Consulting
1 Disaster Recovery Planning & Cross-Border Backup of Data among AMEDA Members Vipin Mahabirsingh Managing Director, CDS Mauritius For Workgroup on Cross-Border.
1 Business Continuity and Compliance Working Together Kristy Justice, AVP WaMu Card Services 08/19/2008.
Business Continuity and You! The Ohio State University Business & Finance Enterprise Continuity Program Quarterly Update October 2008Business and Finance.
IT Assurance and Reliability Why Should You Care? Richard Oppenheim, CPA, CITP President, SysTrust Services Corporation Presented to ISACA Regional Meeting.
Services Tailored Around You® Business Contingency Planning Overview July 2013.
Project Human Resource Management
Continuity of Operations Planning COOP Overview for Leadership (Date)
PresidentVice PresidentAssistant Vice President BDM – Business Development Managers Senior Manager Business Analyst Team of 15 Agents Business Analyst.
Implementing and Auditing Ethics Programs
JJ Mois Année Competitive Intelligence as a key decision factor in Komercni banka André Léger Executive Director, Marketing.
David N. Wozei Systems Administrator, IT Auditor.
© 2013 Cengage Learning. All Rights Reserved. 1 Part Four: Implementing Business Ethics in a Global Economy Chapter 9: Managing and Controlling Ethics.
R L Captive Solutions Cost Control Presentation by Travis Lantis R L Consulting, LLC.
Business Area Update APNIC 27 Manila, Philippines Richard Brown.
How to be an effective COLP Peter Scott Consulting
Implementing and Auditing Ethics Programs
Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.
2010 Virginia RIMS and PRIMA Conference October 5, 2010 Business Impact Analysis: The Road Map to Managing Risks.
Business Continuity and Disaster Recovery Chapter 8 Part 1 Pages 897 to 914.
OCTAVE-S on TradeSolution Inc.. Introduction Phase 1: Critical Assets and threats Phase 2: Critical IT Components Phase 3: Changes Required in current.
Using the CMMI in small Organisations Stephen Fletcher PAS Ltd, UK.
Bank Audit. Internal Audit Internal audit is an independent, objective assurance activity and can give valuable insight in providing assurance that major.
Business Continuity Program Orientation (insert presentation date) (This presentation is a template that requires adjustments to meet your needs)
1 Chapter Nine Conducting the IT Audit Lecture Outline Audit Standards IT Audit Life Cycle Four Main Types of IT Audits Using COBIT to Perform an Audit.
ISMS Implementation Workshop Adaptive Processes Consulting Pvt. Ltd.
Institute Of Hospital Engineering, Australia Infrastructure Business Continuity Planning Practical Problems Encountered Neil Whittington (Arnold Risk Consulting)
WHAT BUSINESS SHOULD DO TO PREPARE FOR GST
Author(s): Don M. Blumenthal, 2010 License: Unless otherwise noted, this material is made available under the terms of the Attribution – Non-commercial.
9 juni 2009 Alex van Os de Man BCI Forum 2009 Business Impact Analysis Process.
© Project One Consulting Limited All rights reserved. 0 Introduction to Project One Slides.
Data Center Management Microsoft System Center. Objective: Drive Cost of Data Center Management 78% Maintenance 22% New Issue:Issue: 78% of IT budgets.
INNOVATE THROUGH MOTIVATION MSP Services Overview KEVIN KIRKPATRICK – OWNER, MSP INC LOGO.
DRP Disaster Recovery Planning. Social Networking... It's the way the 21st century communicates today.
Business Continuity Disaster Planning
CBIZ RISK & ADVISORY SERVICES BUSINESS CONTINUITY PLANNING Developing a Readiness Strategy that Mitigates Risk and is Actionable and Easy to Implement.
How Good are you at Managing your Processes? Operational Excellence.
Disaster Recovery Planning (DRP) DRP: The definition of business processes, their infrastructure supports and tolerances to interruptions, and formulation.
© 2013 MHA Consulting All Rights Reserved. 0 Presented by: Richard Long March 10, 2015 Business Alignment Or How I Learned to Stop Saying “IT”
Practical IT Research that Drives Measurable Results 1Info-Tech Research Group Get Moving with Server Virtualization.
Dr. Gerry Firmansyah CID Business Continuity and Disaster Recovery Planning for IT (W-I)
Service Design.
THINK DIFFERENT. THINK SUCCESS.
Introduction to Business (MRK 151)
BUSINESS CONTINUITY BY HUI ZHENG.
Business Continuity Plan Training
Implementation of the Sustainable Development Goals (SDG) in the Republic of Uzbekistan Geneva, April 12, 2017.
Business Continuity Basics
IT OPERATIONS Session 7.
Define Your IT Strategy
MAZARS’ CONSULTING PRACTICE Helping your Business Venture Further
Presentation transcript:

kpmg Business Continuity Planning An experience based approach Tamás Gaidosch Director, Information Risk Management KPMG Central and Eastern Europe Piaţa Financiară Centre de Continuitate Operaţională şi Recuperare din Dezastre - ediţia II Bucuresti,

kpmg 2 Agenda KPMG in a nutshell Definitions -BCP, DRP, etc…what are we talking about? Goals -what do we want to achieve? The method -a practical way to achieve the goals The experience -what works and what does not? Q & A

kpmg 3 KPMG in a nutshell One of the leading professional services firms Offices in more than 160 countries Over professional staff worldwide Central and Eastern Europe: 15 countries, over professional staff -full breadth of audit and consulting services

kpmg 4 Information Risk Management (IRM) Audit and other financial assurance services IT Consulting Information Risk Management (IRM) IRM services E-Advisory E-Assurance

kpmg 5 Definitions DRP (Disaster Recovery Plan) -the roots of business continuity planning (‘70s) -focused on IT recovery BCP (Business Continuity Plan) -scope extended to the business processes BCM (Business Continuity Management) -focuses on continuous availability CM (Crisis Management) -deals with big disasters

kpmg 6 Goals Recovery of services -as fast as possible -as cost effective as possible What do we want to achieve with a BCP?

kpmg 7 Why bother? Image, good reputation Meet client expectations Minimise financial losses Regulatory compliance Manage operational risk Tomorrow: TO SURVIVE

kpmg 8 Numbers Average loss caused by one hour of IT disruption IndustryUSD Brokerage Card authorisation Pay-per-view TV shopping Airway reservations Parcel services ATM fees Source: Datamotion

kpmg 9 Numbers Causes of IT disruptions Source: Gartner Group

kpmg 10 Costs – with plan and without

kpmg 11 The method 100% 0% Bus. Processes Event Activate Verify Business Continuity as a process

kpmg 12 The method Preparation -Before the event Response -immediately after the event Transient operations -alternative processes -diminished capacity and functionality Recovery -returning to normal operations Phases of the the plan

kpmg 13 Running a BCP project Business impact analysis (BIA) Plan development Implementation Testing Training Maintenance

kpmg 14 Business Impact Analysis (BIA) Process and risk assessment Impacts of disruption -financial -operational -legal -reputation Results -priorities of business processes -critical processes and systems -maximum allowable downtimes

kpmg 15 Business Impact Analysis (BIA) Business Process day week 23-4 Business Unit TreasuryCash supply of branches Cash management Bulk deposits Branch Network Cash transactions Transfers Claims resolution Loans Central Cust. Care Non-stop Call Center Claims resolution LowMediumSevere after disruption Financial impact of disruption

kpmg 16 The experience For major financial institutions Typical length: 6-8 months Typical effort: 5-6 manyears Typical outputs pages of analysis and plans -customised BCP software solutions -hundreds of staff trained Projects delivered

kpmg 17 The experience The business impact analysis is crucial! -deep business understanding and experience -experience in business and risk analysis -objectivity (?) The method is less important Software (database) support No testing = waste of money No maintenance = false sense of safety What is key and what is not?

kpmg 18 The experience Employees -their participation is a must External consultants -not absolutely necessary, but:  bring in wide experience and support tools  do not start from ground zero, do not commit basic mistakes, do not get stuck in the process  help the objectivity (external eye) External IT providers -they know the most about their systems Who should do the project?

kpmg 19 The experience Thick, cumbersome manual A piece of work done by the IT and for the IT Only known to those who created it Result of a compulsory homework, without support and staff not trusting it Gathering dust on a shelf somewhere... How to tell a bad plan?

kpmg 20 The experience Easy to use, well structured Covers all important areas Testable and maintainable Up-to-date (timely inclusion of changes) A living and well-known document How to tell a good plan?

kpmg 21 The broader view Business Continuity Planning (BCP) Proactive and preventive (strategic) Fast reaction and recovery (tactical) Enterprise High Availability (EHA) Availability Service Level Management (SLM) Reliability Issue Solution Focus Goal. Achieve and maintain set availability targets Effectively manage and control the IT infrastructure to improve overall operational reliability Minimise downtime of critical processes in the event of a major disruption Recoverability Business Continuity Management Services

kpmg 22 Q & A Tamás Gaidosch Director, Information Risk Management KPMG Central and Eastern Europe

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.